This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/oa3R9ADUHnitTqOjY-YFlczVDYw.roa File: oa3R9ADUHnitTqOjY-YFlczVDYw.roa (raw, json) Hash identifier: 0doN9O3DMtGT8lY8dDg9Cfv+xqI5yxqisQhvbtCCLs8= Subject key identifier: A1:AD:D1:F4:00:D4:1E:78:AD:4E:A3:A3:63:E6:05:95:CC:D5:0D:8C Certificate issuer: /CN=666034ca6a16bbd0144abdf5cf2458f968b1589c Certificate serial: 019BE55940F975BEA9AA13DCE30E390FC83D Authority key identifier: 66:60:34:CA:6A:16:BB:D0:14:4A:BD:F5:CF:24:58:F9:68:B1:58:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZmA0ymoWu9AUSr31zyRY-WixWJw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/oa3R9ADUHnitTqOjY-YFlczVDYw.roa Signing time: Thu 22 Jan 2026 10:56:30 +0000 ROA not before: Thu 22 Jan 2026 10:56:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 28787 IP address blocks: 37.61.0.0/17 maxlen: 17 37.61.79.0/24 maxlen: 24 37.61.112.0/22 maxlen: 22 37.61.116.0/22 maxlen: 22 37.61.120.0/22 maxlen: 22 37.61.124.0/22 maxlen: 22 81.17.80.0/20 maxlen: 20 81.17.82.0/24 maxlen: 24 188.253.128.0/19 maxlen: 19 188.253.208.0/22 maxlen: 22 188.253.212.0/22 maxlen: 22 188.253.216.0/22 maxlen: 22 188.253.220.0/22 maxlen: 22 188.253.254.0/24 maxlen: 24 188.253.255.0/24 maxlen: 24 194.135.172.0/24 maxlen: 24 194.135.173.0/24 maxlen: 24 194.135.174.0/24 maxlen: 24 194.135.175.0/24 maxlen: 24 194.135.176.0/24 maxlen: 24 194.135.177.0/24 maxlen: 24 194.135.178.0/24 maxlen: 24 194.135.179.0/24 maxlen: 24 213.154.0.0/19 maxlen: 19 213.154.2.0/23 maxlen: 23 217.64.16.0/20 maxlen: 20 217.64.16.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/ZmA0ymoWu9AUSr31zyRY-WixWJw.crl rsync://rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/ZmA0ymoWu9AUSr31zyRY-WixWJw.mft rsync://rpki.ripe.net/repository/DEFAULT/ZmA0ymoWu9AUSr31zyRY-WixWJw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 20:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:e5:59:40:f9:75:be:a9:aa:13:dc:e3:0e:39:0f:c8:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=666034ca6a16bbd0144abdf5cf2458f968b1589c Validity Not Before: Jan 22 10:56:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a1add1f400d41e78ad4ea3a363e60595ccd50d8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:2d:96:c6:a0:87:9d:c0:58:7c:fe:5e:95:87: f2:75:30:50:c9:ce:70:10:42:32:da:98:ed:26:40: 0c:4d:df:c2:3b:db:55:72:02:9e:2a:4c:3c:9d:19: 06:8d:f4:70:2d:3a:2e:b5:5a:47:32:39:aa:36:b0: 38:6e:d7:32:16:b2:cc:8c:80:f5:74:d0:bf:b7:a5: 70:c5:2e:71:87:0c:26:4d:fa:e3:6e:5c:b4:c3:f8: 2e:49:6f:f3:85:ee:38:0a:d8:18:54:ec:dc:47:8a: ac:a3:43:60:ff:48:b6:72:52:b3:5e:86:57:cc:56: 31:c2:06:5a:36:57:9d:f4:05:15:c3:ed:43:b4:1e: 1a:ce:18:f1:55:a1:b7:9d:19:80:78:27:e8:46:c4: 1c:e7:a7:79:0b:37:a3:7f:53:1d:9b:1d:cf:ed:59: 71:81:6d:20:91:1c:87:21:99:83:51:b2:ea:e9:91: 46:8d:86:36:a4:a3:85:46:e2:4e:db:e0:48:5f:b0: 0b:32:f6:97:ca:dc:01:08:1d:4d:fb:5b:d7:81:81: f8:12:f3:f6:5b:3e:b3:86:20:e8:6f:7e:37:c2:02: e1:cb:9e:cb:4a:35:24:07:e7:1d:ae:8d:38:3c:6f: bd:4d:b5:38:98:69:7c:d2:9b:8f:72:78:ca:7d:d6: b3:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:AD:D1:F4:00:D4:1E:78:AD:4E:A3:A3:63:E6:05:95:CC:D5:0D:8C X509v3 Authority Key Identifier: keyid:66:60:34:CA:6A:16:BB:D0:14:4A:BD:F5:CF:24:58:F9:68:B1:58:9C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZmA0ymoWu9AUSr31zyRY-WixWJw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/oa3R9ADUHnitTqOjY-YFlczVDYw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/ZmA0ymoWu9AUSr31zyRY-WixWJw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.61.0.0/17 81.17.80.0/20 188.253.128.0/19 188.253.208.0/20 188.253.254.0/23 194.135.172.0-194.135.179.255 213.154.0.0/19 217.64.16.0/20 Signature Algorithm: sha256WithRSAEncryption 90:6c:67:ce:81:c0:b2:a4:83:42:39:57:00:2b:aa:7b:5d:b5: 2e:39:e1:59:a9:30:cd:71:8d:cd:b3:7f:60:4e:f4:8a:ad:31: 14:e7:17:91:76:c7:1a:f5:1d:53:e2:96:79:5e:63:b7:25:1b: 84:3b:43:70:04:c7:dd:1e:73:6f:f9:19:70:6b:8d:e0:69:bb: 9f:81:62:13:95:83:6e:c1:11:43:3c:88:72:30:40:20:bb:fd: fc:bb:43:83:53:5b:18:2b:46:88:5b:8f:8e:6a:17:f3:79:f6: 8e:6b:eb:f6:54:33:c3:3e:93:cf:14:83:f4:cd:0a:5d:61:0c: d4:e6:2a:9a:b6:4a:4b:72:a5:19:75:ba:08:37:46:20:9e:8a: e7:af:11:9a:58:a5:e6:0f:f1:ee:9d:7e:4b:14:cf:f0:4d:2d: 23:be:ba:9d:6a:47:12:4f:c1:0e:9c:e0:db:9f:7c:d1:d3:80: 4a:a9:02:7f:6d:c6:73:1f:ec:07:1a:72:83:4e:79:ed:d2:66: a8:0b:46:18:44:9c:fa:48:75:5e:ee:cb:65:30:75:4c:3e:dc: 5a:52:5c:5c:9c:5a:ae:68:04:30:bc:f3:6f:d2:1f:1f:b5:b2: 83:5f:e0:c8:9f:d3:13:ab:3a:8b:07:7e:42:5e:84:06:d1:b9: d8:59:be:66 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgISAZvlWUD5db6pqhPc4w45D8g9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY2NjAzNGNhNmExNmJiZDAxNDRhYmRmNWNmMjQ1OGY5Njhi MTU4OWMwHhcNMjYwMTIyMTA1NjMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMWFkZDFmNDAwZDQxZTc4YWQ0ZWEzYTM2M2U2MDU5NWNjZDUwZDhjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApi2WxqCHncBYfP5elYfydTBQyc5w EEIy2pjtJkAMTd/CO9tVcgKeKkw8nRkGjfRwLToutVpHMjmqNrA4btcyFrLMjID1 dNC/t6VwxS5xhwwmTfrjbly0w/guSW/zhe44CtgYVOzcR4qso0Ng/0i2clKzXoZX zFYxwgZaNled9AUVw+1DtB4azhjxVaG3nRmAeCfoRsQc56d5Czejf1Mdmx3P7Vlx gW0gkRyHIZmDUbLq6ZFGjYY2pKOFRuJO2+BIX7ALMvaXytwBCB1N+1vXgYH4EvP2 Wz6zhiDob343wgLhy57LSjUkB+cdro04PG+9TbU4mGl80puPcnjKfdazLQIDAQAB o4ICOzCCAjcwHQYDVR0OBBYEFKGt0fQA1B54rU6jo2PmBZXM1Q2MMB8GA1UdIwQY MBaAFGZgNMpqFrvQFEq99c8kWPlosVicMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWm1BMHltb1d1OUFVU3IzMXp5UlktV2l4V0p3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi9mNGI3MzMtMjlhZC00ZDU2LWI5ZDIt NWQ0OGJjZDdjMWRjLzEvb2EzUjlBRFVIbml0VHFPalktWUZsY3pWRFl3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Mi9mNGI3MzMtMjlhZC00ZDU2LWI5ZDItNWQ0OGJjZDdjMWRj LzEvWm1BMHltb1d1OUFVU3IzMXp5UlktV2l4V0p3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFEGCCsGAQUFBwEHAQH/BEIwQDA+BAIAATA4AwQHJT0AAwQE URFQAwQFvP2AAwQEvP3QAwQBvP3+MAwDBALCh6wDBALCh7ADBAXVmgADBATZQBAw DQYJKoZIhvcNAQELBQADggEBAJBsZ86BwLKkg0I5VwArqntdtS454VmpMM1xjc2z f2BO9IqtMRTnF5F2xxr1HVPilnleY7clG4Q7Q3AEx90ec2/5GXBrjeBpu5+BYhOV g27BEUM8iHIwQCC7/fy7Q4NTWxgrRohbj45qF/N59o5r6/ZUM8M+k88Ug/TNCl1h DNTmKpq2SktypRl1ugg3RiCeiuevEZpYpeYP8e6dfksUz/BNLSO+up1qRxJPwQ6c 4NuffNHTgEqpAn9txnMf7AcacoNOee3SZqgLRhhEnPpIdV7uy2UwdUw+3FpSXFyc Wq5oBDC882/SHx+1soNf4Mif0xOrOosHfkJehAbRudhZvmY= -----END CERTIFICATE-----Generated at Tue Feb 10 02:58:25 2026 by rpki-client